We started elevenM with a view of combining privacy and cyber security skills in a meaningful way. Our goal was to create a consultancy that helps clients monitor and protect their data throughout the data lifecycle, allowing them to build digital trust with their customers and ultimately drive competitive advantage.

Our team comprises deep experts and respected practitioners in privacy, cyber security, risk and communications, based internationally and around Australia. To build our team, we’ve drawn carefully from our collective networks, and we continue to identify and bring new talent into our team.

Peter Quigley — Principal

Peter has been a cyber security practitioner for over 20 years and has provided cyber security and technology risk services to clients across Australia, the US and Europe. Prior to founding elevenM, Peter held the position of IT Security Assurance leader for PwC Australia. Peter currently holds strategic cyber advisory roles with several top ASX listed organisations.


Melanie Marks — Principal

A recognised figure in the privacy industry, Melanie has established and run privacy governance programs for the Commonwealth Bank of Australia and the National eHealth Transition Authority (now the Australian Digital Health Agency).

In her current capacity as privacy practice lead at elevenM, Melanie works with Australia’s most prominent brands to manage privacy, data governance and other risks of the digital age. In this role, Melanie has worked extensively with listed companies, SMEs and Commonwealth and jurisdictional agencies (including the OAIC) to solve privacy problems and drive change and innovation.

Former President of iAPP ANZ, Melanie now serves on its advisory board as well as the Privacy Advisory Board of Hello Sunday Morning and is an Expert Advisor to LexisNexis on privacy and data protection.


Arjun Ramachandran — Principal

Arjun specialises in providing strategic advice and communications expertise to help organisations build trust with their customers, boards and other key stakeholders.

A media and communications specialist, Arjun worked as a journalist at the Sydney Morning Herald and in senior media relations roles across government and the private sector before establishing the cyber outreach and advocacy program for the Commonwealth Bank of Australia. In this role Arjun helped to establish the bank as a cyber security thought leader and also led the bank’s cyber security strategy, incident response communications and security awareness programs.


Sheila FitzPatrick — Principal

Sheila is considered one of the world’s leading experts in data privacy laws and works closely with the US Government, Council of the European Union, country-specific data protection authorities in Europe, Asia/Pacific, and The Americas. She provides expertise and hands-on experience in the areas of global data protection compliance, data sovereignty, cybersecurity regulations and obligations, legal issues associated with cloud computing, big data and new technologies, data breach compliance and management, and records management. Sheila has been recognised by Data Protection Authorities (DPAs) around the world for her depth of comprehension and commitment to data protection laws

Sheila holds strategic seats on several committees including the European Union Data Protection Advisory Council, the Asia Pacific Data Protection Framework Advisory Board and the Pacific Rim Privacy and Cybersecurity Advisory Group. Sheila was honoured as one of the Silicon Valley’s Women of Influence for 2017.


Alistair Macleod — Principal

With extensive experience in privacy, risk, IT law and software engineering, Alistair is uniquely qualified to understand how technology can be used to simplify and automate risk, information and business processes.

Alistair has practiced law in the corporate and technology fields, and most recently held a senior advisory role at the Commonwealth Bank of Australia, where he designed and implemented automated privacy tools and advised technology teams on privacy compliance and best practice.


Cassie Findlay — Principal

Cassie is an information governance and privacy professional with over 20 years’ operational and management experience delivering results in complex government and corporate environments. Most recently, based in San Francisco, she managed fashion retailer Gap Inc’s global information governance program and led the automation of Gap’s data subject rights program in support of CCPA and GDPR compliance.

Cassie was the lead author of the current International Standard on records management, ISO 15489, and is a member of the Standards Australia Committee on records management, IT 21. She holds a Master of Information Management from the University of New South Wales and CIPP/US and CIPM certifications from the International Association of Privacy Professionals.

Mike Wood — Senior Project Manager

Mike is a business change specialist who has successfully planned and delivered complex programs for some of the world’s most recognisable brands. Through his operational and program experience, Mike has become a strong advocate for the delivery of privacy and cyber changes through programs. This advocacy has lead Mike to been seen as a thought leader on how to successfully deliver privacy and cyber programs through a focus on people adopting new behaviours and ways of working rather than just technology solutions.

Prior to joining elevenM Mike was a Partner at Norman & Sons in London and previous to this a Transformation Specialist and Management Consultant with PwC.


Jordan Wilson-Otto — Senior Consultant

Jordan is a privacy specialist with experience in regulatory investigations, policy development, information security and open data. Jordan has conducted high profile regulatory investigations for both the State and Federal privacy regulators. He was Assistant Commissioner for Operational Privacy and Assurance at the Office of the Victorian Information Commissioner, where he established and led the investigations and assurance function.

Jordan has also held leadership roles at GovHack, and the Victorian Society for Computers and the Law, and recently completed a Master’s thesis examining how open data approaches could contribute to transparency and public trust in the justice system.


Sebastian Le Cat — Senior Consultant

Sebastian is a senior consultant with four years of privacy experience in Australia and the Netherlands. With expertise in implementing the European General Data Protection Regulation and the Australian Privacy Act as well as other APAC privacy frameworks, Sebastian’s key area of interest is the intersection between data, cyber and privacy. He supports businesses across all industries to meet compliance requirements and uplift their privacy practices.

Sebastian holds a Masters of Law in Internet, Intellectual Property and IT Law from VU University Amsterdam, specialising in privacy law, with a focus on international data transfers. Sebastian is CIPP/E and CIPM certified.


Tessa Loftus — Senior Consultant

Tessa is a communications and content strategist who specialises in targeted and accessible communications. With a decade of professional communications and stakeholder management experience, Tessa has a background in regulation, privacy and information security. She has produced strategies for a range of public and private sector organisations and worked as the publications manager and speechwriter to the Commissioners at the OAIC.


Gabby Tolkin-Rosen — Consultant

Gabriella focuses on strategic projects at elevenM. With rich experience in product management and in operationalising early-stage ventures, Gabriella aims to generate creative solutions at the intersection of product and privacy. Gabriella graduated with honours in Law from the University of Edinburgh and wrote her thesis on EU competition regulation in data-driven markets. She holds a CIPP/E from the International Association of Privacy Professionals.


Theo Schreuder — Consultant

Theo is a cyber security specialist with a proven track record delivering outcomes on Australia’s largest cyber security programs. He brings a hands-on technical background to the team and is passionate about the difference effective cyber security can make to Australia’s digital economy. Theo holds degrees in Electrical Engineering and Chemistry from the University of New South Wales in Sydney.